Certification Service Provider of the Ministry of Employment and Social Securityp. Profile for Electronic seal certificate

Save this PDF as:
 WORD  PNG  TXT  JPG

Size: px
Start display at page:

Download "Certification Service Provider of the Ministry of Employment and Social Securityp. Profile for Electronic seal certificate"

Transcription

1 SUBSECRETARÍA S.G. DE TECNOLOGÍAS DE LA INFORMACIÓN Y COMUNICACIONES Certification Service Provider of the Ministry of Employment and Social Securityp Profile for Electronic seal certificate C/ AGUSTÍN DE BETHENCOURT, MADRID TEL: FAX:

2 Identifier Title Responsible Version 1.4 Date Version control D303 Certification Service Provider of the Ministry of Employment and Social Security. Profile for Electronic seal certificate SG de Tecnologías de la Información y las Comunicaciones Ministerio de Empleo y Seguridad Social Version history Version Date Comments Final document ISO/IANA number changes of the MPR and in the oid of the Electronic seal certficate issued by CSPM Heading Change, suppression of DG de Servicios Suppression of the posibility of certificate request using valid certificates Changed SGPD to SGTIC Certificate description change (ELECTRONIC SEAL FOR AUTOMATED PROCESSING to ELECTRONIC SEAL) and OID change ( ) Organization Structure actualization and new format ii

3 Contents 1 Introduction Presentation Description... Error! Marcador no definido. 1.3 Document name and identification Document identification Identification of certificate types End users... Error! Marcador no definido. 1.5 Certificate usage Definitions and acronyms Definitions Acronyms... Error! Marcador no definido. 2 Identification Management of names Names types Administrative Identity and Normalization Operational requirements Certificate application Certificate issuance Certificate renewal Certificate revocation Profile for Electronic Seal certificate... 7 Annex A: References Annex B: Links (URL) iii

4 1 Introduction 1.1 Presentation This document contains the profile of the Electronic Seal Certificate issued by the Certification Service Provider of the Ministry of Employment and Social Security (CSPM). This document clarifies and supplements the CSPM Certification Practice Statement (CPSM) regarding Electronic Seal certificates. 1.2 Description Electronic Seal certificate is an authentication system for the automated administrative procedures and is described in LAECSP article 18th. It is a technical instrument that allows the electronic authentication of the public administration as well as the Electronic documents produced by them. The Electronic Seal certificates issued by the CSPM are qualified certificates as defined in the LFE and they meet the requirements for medium level assurance as defined in [EIFEBIII]. Following this scheme, medium level assurance implies X.509 certificates. The Electronic Seal certificates are X.509 qualified certificates stored in software containers, located in secure application servers. 1.3 Document name and identification Identification of this document This document name is Certification Service Provider of the Ministry of Employment and Social Security. Profile for Electronic Seal certificate, with the following information: - Document version Document status Published - Emission date June 30th Expiration date NA Internet address of this document is listed in Annex B Identification of certificate types Each certificate type has a dedicated OID, included in the PolicyIdentifier field of the certificate. Each OID is univocal and is not used to identify different types, policies or versions od issued certificates. OID for Electronic Seal certificate is: Electronic Seal Certificate: [ ] 1

5 1.4 End users End users are the persons or entities that own and use the electronic certificates issued by the CSPM certification authorities. There are different end user types: a. Certificate requester. b. Certificate subscriber. c. Certificate responsible. d. Certificate verifier. Certificate requesters are the public employees of the Administration department. Certificate subscribers of the Electronic Seal are the Public Administrations identified as such in the Subject Field. In the Common Name attribute is the name of the device, application or Server (name of the system) to which the certificate is associated. Those responsible for the custody of the certificate are the authorized public employees. Verifiers are the entities (including natural and legal persons, Public Administrations and other organizations) who, using an Electronic Seal certificate, issued by CPSM, verify the identity and authenticity of the automated administrative procedure, trusting on the validity of the relationship between an electronic system or device belonging to the administrative entity subscriber of the certificate and the public key of the certificate. 1.5 Certificate Usage Electronic Seal certificates issued under the CPSM shall be used only in the defined transactions inside the permitted systems and applications. Issuance of the Electronic Seal certificates under the CPSM obliges the subscriber to the acceptance and use thereof in the terms expressed in the CPSM. It is emphasized that falls outside the scope of the CPSM to ensure the technological feasibility of applications that make use of any of the certificate profiles defined by the CPSM. It is not allowed in any way the use of Electronic Seal certificates outside the scope described in the CPSM what could cause immediate revocation of the certificates by the misuse of the same. Electronic Seal certificate issued by the CSPM, corresponding to the one defined in the LAECSP, has its usage limited by the law dispositions. 1.6 Definitions and acronyims Definitions Within this document the following definitions are used: C Country: Distinguished Name attribute for an object within a X.500 directory structure. CN Common name: Distinguished Name attribute for an object within a X.500 directory structure. DN Univocal identification for an item within a X.500 directory. O Organization: Distinguished Name attribute for an object within X.500 directory structure.. OCSP On line Certificate Status Protocol: This protocol allows checking the 2

6 OU PIN PKCS RFC revocation status of an electronic certificate. Organizational Unit: Distinguished Name attribute for an object within a X.500 directory structure. Personal Identification Number: Password that protects access to a cryptographic card. Public Key Cryptography Standards is a set of standards defined by RSA Laboratories and internationally accepted. Request For Comments, standard documents emitted by IETF(Internet Engineering Task Force) Acronyms PPAA C CA CDP CEC CN CP CPS CPSM CRL CSP CSPM CSR CWA DN LAECSP LFE O OU OID OCSP RA RFC VA PPAA C CA CDP CEC CN CP CPS Public Administrations. Country. Certification Authority. CRL Distribution Point. Certificate Emision Code. Common Name. Certificate Policy. Certification Practice Statement Certification Practice Statement of the Ministry Certificate Revocation List. Cryptographic Service Provider. Cryptographic Service Provider of the Ministry. Certificate Signing Request. CEN Workshop Agreement. Distinguished Name. Law 11/2007 of June 22nd, on electronic access of citizens to Public Services (Ley 11/2007, de 22 de junio, de acceso electrónico de los ciudadanos a los Servicios Públicos). Law 59/2003 of December 19th on Electronic Signature (Ley 59/2003 de 19 de diciembre de Firma Electrónica). Organization. Organizational Unit. Object IDentifier. On-line Certificate Status Protocol. Registration Authority. Request For Comments. Validation Authority. Public Administrations. Country. Certification Authority. CRL Distribution Point. Certificate Emision Code. Common Name. Certificate Policy. Certification Practice Statement 3

7 2 Identification 2.1 Management of names Types of names Every certificate contains the DN, defined following the rules of the recommendation [ITU-T X.501], of the person and/or organization identified in the certificate, contained in the Subject field, including a Common Name attribute. All the issued certificates also meet the standard [IETF RFC 3280] Normalization and Administrative Identity The CSPM uses the normalized naming schema Administrative Identity proposed by the Spanish administration for every type of certificate and profile. The Administrative Identity object has the ISO/IANA number X.X, provided by the Spanish administration as a base to identify it, thus establishing a worldwide univocal identifier. The Administrative Identity number for the Electronic Seal certificate is: Electronic Seal for automated administrative procedures (Medium level of assurance) Certificate ELECTRONIC SEAL FOR AUTOMATED ADMINISTRATIVE PROCEDURES Mandatory Administrative Identity fields Type of certificate Name of the subscriber entity NIF of the subscriber entity System or component denomination Certificate ELECTRONIC SEAL FOR AUTOMATED ADMINISTRATIVE PROCEDURES Optional Administrative Identity fields DNI/NIE of the responsible Given name First surname Second surname address 4

8 3 Operational requirements 3.1 Application for certificates Only the public employees working for an administration body are allowed to start the application procedure for an electronic seal certificate for that body. The Certification Authority shall verify that he is indeed a public employee of the applicant organization. It is permitted the application without physical presence, based on administrative databases or applicable certificate. The only method currently allowed to request electronic seal certificates is via of an authorized public employee, sent from an internal account of the organism with the completed application form. Special attention will be paid to make sure the application form contains all the data corresponding to the certificate responsible person. Thus, methods based on indirect physical presence are used, since the physical identity validation has occurred previously and ministry records are constantly kept updated. The responsible of the certificates are the authorized public employees of the organization. The person responsible the Certification Entity shall approve or deny applications for certificates of electronic seal. If the request is refused, the Certification Entity shall notify the applicant thereof denial. The procedures established in this section also apply in case of renewal of certificates, as it involves the issuance of new certificates. 3.2 Issuance of certificates Upon approval of the application of the electronic seal certificate, the issuance of the same will be made safely. Delivery and acceptance of the certificate by the subscriber of the same is guaranteed by safe delivery to the responsible person. The CSPM uses a procedure to generate the certificates that securely links the certificates with the organization information, including the certified public. It also indicates the date and time in which they were issued and measures are taken against forgery of certificates and to ensure the secrecy of the keys during its generation process. The procedures established in this section also apply in case of renewal of certificates, as it involves the issuance of new certificates. 3.3 Certificate renewal The renewal of Electronic Seal Certificates means the issuance of new certificates, being necessary to carry out a new application and subsequent issuance as described in previous sections. Like with the application for the first time, procedures could be established in the future for the certificate renewal using valid certificates, and, if so, the applicant must authenticate remotely by certificate authentication in hardware support(cryptographic card), allowing no alternative to this practice. 5

9 3.4 Certificate revocation The CSPM authenticates requests and reports relating to revocation of Electronic Seal Certificates, checking that they come from an authorized person. Revocation requests must be sent to SGTIC (Subdirección General de Tecnologías de la Información y las Comunicaciones). Persons authorized to request revocation of this kind are the responsible persons of the same and the public employees within the organization with a rank level equal o higher to 30. Revocation mechanisms are allowed through internal accounts properly validated or by a writing form signed by the applicant for revocation. 6

10 4 Profile for Electronic Seal certificate The fields are the following: Field Description Contents 1. X.509v1 Field 1.1. Version 1.2. Serial Number 1.3. Issuer Distinguished Name Country (C) Organization (O) Locality (L) Organizational Unit (OU) Organizational Unit (OU) Common Name (CN) Serial Number 1.4. Validity Not Before Not After 1.5. Subject Country (C) Organization (O) Organizational Unit (OU) Serial Number Common Name X.509 Standard version for the certificate Certificate univocal identification number Country Official name of the cryptographic service provider (certificate issuer) Cryptographic service provider locality Organizational unit within the service provider, responsible for issuing the certificate Organizational unit within the service provider, responsible for issuing the certificate Common name of the cryptographic service provider (certificate issuer) NIF of the Ministry of Employment and Social Security Validity period: 3 years Start of validity period End of validity period País Official name of the subscriber entity Certificate type description NIF of the subscriber entity Name of the system or application where the 2 (= v3) 7c b6 c9 (sample) C = ES O = DE TRABAJO E INMIGRACION L = MADRID OU = SUBDIRECCION GENERAL DE PROCESO DE DATOS OU = PRESTADOR DE SERVICIOS DE CERTIFICACION MTIN CN = AC1 RAIZ MTIN S E UTCTime YYMMDDHHMMSSZ UTCTime YYMMDDHHMMSSZ C = ES O = Y SEGURIDAD SOCIAL (sample) OU = SELLO ELECTRONICO SerialNumber = S E (sample) CN = REGISTRO CENTRAL DEL MEYSS (sample) 7

11 Field Description Contents (CN) 1.6. Subject Public Key Info 1.7. Signature Algorithm And the extensions are the following: 2. X.509v3 Extensions automated procedure is Public key, codified following the cryptographic algorithm Signature algorithm SHA-1 RSA Signature, 1024 bit key length Field Description Contents 2.1. Authority Key Identifier Key Identifier AuthorityCertIssuer AuthorityCertSerial Number 2.2. Subject Key Identifier 2.3. crldistributionpoint distributionpoint distributionpoint 2.4. Authority Info Access Access Method Access Location 2.5. Issuer Alternative Name rfc822name Identification of the public key corresponding to the private key used to sign a certificate. This extension is used where an issuer has multiple signing keys Issuer public key identifier Issuer certification path Serial number of the CA certificate Subject public key identifier (derived from the subject public key using SHA1 hash) Indicates how to obtain the CRL information Website where CRL is found (distribution point 1) Website where CRL is found (distribution point 2) C=ES, L=MADRID, O= DE TRABAJO E INMIGRACION, OU=SUBDIRECCION GENERAL DE TECNOLOGIAS DE LA INFORMACION Y LAS COMUNICACIONES. OU=PRESTADOR DE SERVICIOS DE CERTIFICACION, SERIALNUMBER=S E, CN=AC1 RAIZ MTIN URL CRL distribution point 1(see annex B) URL CRL distribution point 2(see annex B) Id-ad-ocsp OID OCSP Web address OCSP URL (see annex B) Alternative name for the contact person at the Issuer CA contact address at the issuer CA 8

12 2.6. Key Usage Field Description Contents Digital Signature Content Commitment Key Encipherment Data Encipherment Key Agreement Key Certificate Signature CRL Signature 2.7. Extended Key Usage Protection Client Authentication Critical extension to determine certificate usage Used when the subject public key is used for verifying digital signatures Used when the software must allow user to know what is signing Used for keys management and transport Used to encipher data other tan cryptographic keys Used in key agreement protocol Used to sign certificates. It is used in the CA certificates Used to sign certificate revocation lists Selected 1 Selected 1 Selected 1 Selected 1 Not selected 0 Not selected 0 Not selected 0 protection OID Client authenticatioon OID Qualified Certificate Statements OcCompliance OcEuRetentionPeri od 2.9. Certificate Policies Policy Identifier Policy Qualifier ID DPC Pointer User Notice Subject Alternate Names rfc822name Qualified certificate statement OID Retention period for information (15 years) OID OID associated to the CPS OID CPS specification URL for the CPS CPSM URL location (see annex B) explicittext field Contact address at the subscriber entity " Qualified Electronic Seal certificate for Administration, Agency or Public entity, medium level of assurance. See the terms of use at < CPSM URL location (see annex B)> (sample) 9

13 Field Description Contents Directory Name Certificate Type Name NIF of the subscriber entity DNI/NIE of the responsible Denomination of the system or component Given name First surname Second surname Administrative Identity Certificate Type Name of the subscriber entity NIF of the subscriber entity DNI/NIE of the person responsible for the certificate Short description of the component that uses the Electronic Seal certificate Given name of the person responsible for the certificate First surname of the person responsible for the certificate Second surname of the person responsible for the certificate address of the person responsible for the certificate = SELLO ELECTRONICO = DE EMPLEO (sample) = S = (not used) = REGISTRO CENTRAL DEL Y SEGURIDAD SOCIAL (sample) = (not used) = (not used) = (not used) = (not used) 10

14 Annex A: References EIFEBIII Esquema de identificación y firma electrónica de las Administraciones Públicas. Bloque III (Public Administrations scheme for identification and electronic signature. Part III) ITU-T X.501 ITU-T Recommendation X.501 TC2 (08/1997) ISO/IEC :1998. IETF RFC 3280 Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile. 11

15 Annex B: Links (URL) CPSM and certificate profile location: OCSP Location: CRL publication address: - Distribution point 1: - Distribution point 2: 12

Certification Service Provider of the Ministry of Employment and Social Security. Profile for Electronic Office certificate

Certification Service Provider of the Ministry of Employment and Social Security. Profile for Electronic Office certificate DE EMPLEO Y SUBSECRETARÍA S.G. TEGNOLOGÍAS DE LA INFORMACION Y COMUNICACIONES Certification Service Provider of the Ministry of Employment and Social Security Profile for Electronic Office certificate

More information

Certification Service Provider of the Ministry of Employment and Social Security. Profile for Public Employee certificates

Certification Service Provider of the Ministry of Employment and Social Security. Profile for Public Employee certificates SUBSECRETARÍA S.G. DE TECNOLOGÍAS DE LA INFORMACIÓN Y COMUNICACIONES Certification Service Provider of the Ministry of Employment and Social Security Profile for Public Employee certificates sgtic@meyss.es

More information

Certification Practice Statement of the Federal Reserve Banks Services Public Key Infrastructure

Certification Practice Statement of the Federal Reserve Banks Services Public Key Infrastructure Certification Practice Statement of the Federal Reserve Banks Services Public Key Infrastructure 1.0 INTRODUCTION 1.1 Overview The Federal Reserve Banks operate a public key infrastructure (PKI) that manages

More information

REGISTRATION AUTHORITY (RA) POLICY. Registration Authority (RA) Fulfillment Characteristics SECURITY DATA SEGURIDAD EN DATOS Y FIRMA DIGITAL, S.A.

REGISTRATION AUTHORITY (RA) POLICY. Registration Authority (RA) Fulfillment Characteristics SECURITY DATA SEGURIDAD EN DATOS Y FIRMA DIGITAL, S.A. REGISTRATION AUTHORITY (RA) POLICY Registration Authority (RA) Fulfillment Characteristics SECURITY DATA SEGURIDAD EN DATOS Y FIRMA DIGITAL, S.A. INDEX Contenido 1. LEGAL FRAMEWORK... 4 1.1. Legal Base...

More information

CERTIFICATE POLICIES (CP) Legal Person Certificate ICE SECURITY DATA SEGURIDAD EN DATOS Y FIRMA DIGITAL, S.A. CP

CERTIFICATE POLICIES (CP) Legal Person Certificate ICE SECURITY DATA SEGURIDAD EN DATOS Y FIRMA DIGITAL, S.A. CP CERTIFICATE POLICIES (CP) Certificate ICE SECURITY DATA SEGURIDAD EN DATOS Y FIRMA DIGITAL, S.A. CP Certificate INDEX 1. LEGAL FRAMEWORK... 5 1.1. Legal Base... 5 1.2. Validation... 5 1.3. Legal Support...

More information

CERTIFICATE POLICIES (CP) Public Functionary Certificate ICE SECURITY DATA SEGURIDAD EN DATOS Y FIRMA DIGITAL, S.A. CP

CERTIFICATE POLICIES (CP) Public Functionary Certificate ICE SECURITY DATA SEGURIDAD EN DATOS Y FIRMA DIGITAL, S.A. CP CERTIFICATE POLICIES (CP) ICE SECURITY DATA SEGURIDAD EN DATOS Y FIRMA DIGITAL, S.A. CP INDEX 1. LEGAL FRAMEWORK... 5 1.1. Legal Base... 5 1.2. Validation... 5 1.3. Legal Support... 5 2. INTRODUCTION...

More information

TECHNICAL STANDARDS FOR INTEROPERABILITY OF ELECTRONIC ID CARDS

TECHNICAL STANDARDS FOR INTEROPERABILITY OF ELECTRONIC ID CARDS Représentant les avocats d Europe Representing Europe s lawyers TECHNICAL STANDARDS FOR INTEROPERABILITY OF ELECTRONIC ID CARDS Technical standards for interoperability of electronic ID cards 1. Introduction

More information

CERTIFICATE POLICIES (CP) Natural Person Certificate ICE SECURITY DATA SEGURIDAD EN DATOS Y FIRMA DIGITAL, S.A. CP

CERTIFICATE POLICIES (CP) Natural Person Certificate ICE SECURITY DATA SEGURIDAD EN DATOS Y FIRMA DIGITAL, S.A. CP CERTIFICATE POLICIES (CP) Natural Person Certificate ICE SECURITY DATA SEGURIDAD EN DATOS Y FIRMA DIGITAL, S.A. CP INDEX 1. LEGAL FRAMEWORK... 5 1.1. Legal Base... 5 1.2. Validation... 5 1.3. Legal Support...

More information

Apple Inc. Certification Authority Certification Practice Statement Worldwide Developer Relations Version 1.14 Effective Date: September 9, 2015

Apple Inc. Certification Authority Certification Practice Statement Worldwide Developer Relations Version 1.14 Effective Date: September 9, 2015 Apple Inc. Certification Authority Certification Practice Statement Worldwide Developer Relations Version 1.14 Effective Date: September 9, 2015 Table of Contents 1. Introduction... 5 1.1. Trademarks...

More information

CERTIFICATION PRACTICE STATEMENT UPDATE

CERTIFICATION PRACTICE STATEMENT UPDATE CERTIFICATION PRACTICE STATEMENT UPDATE Reference: IZENPE-CPS UPDATE Version no: v 5.03 Date: 10th March 2015 IZENPE 2015 This document is the property of Izenpe. It may only be reproduced in its entirety.

More information

Apple Corporate Email Certificates Certificate Policy and Certification Practice Statement. Apple Inc.

Apple Corporate Email Certificates Certificate Policy and Certification Practice Statement. Apple Inc. Apple Inc. Certificate Policy and Certification Practice Statement Version 2.0 Effective Date: April 10, 2015 Table of Contents 1. Introduction... 4 1.1. Trademarks... 4 1.2. Table of acronyms... 4 1.3.

More information

Danske Bank Group Certificate Policy

Danske Bank Group Certificate Policy Document history Version Date Remarks 1.0 19-05-2011 finalized 1.01 15-11-2012 URL updated after web page restructuring. 2 Table of Contents 1. Introduction... 4 2. Policy administration... 4 2.1 Overview...

More information

Banco de España's Public Key Infrastructure Certificate Policies for Internal User Certificates

Banco de España's Public Key Infrastructure Certificate Policies for Internal User Certificates 11.05.2015 OID: 1.3.6.1.4.1.19484.2.2.20 Banco de España's Public Key Infrastructure Certificate Policies for Internal User Certificates OVERVIEW This document sets out the Certificate Policies (CP) governing

More information

Certificate Policy for. SSL Client & S/MIME Certificates

Certificate Policy for. SSL Client & S/MIME Certificates Certificate Policy for SSL Client & S/MIME Certificates OID: 1.3.159.1.11.1 Copyright Actalis S.p.A. All rights reserved. Via dell Aprica 18 20158 Milano Tel +39-02-68825.1 Fax +39-02-68825.223 www.actalis.it

More information

CERTIFICATION PRACTICE STATEMENT (CPS) SECURITY DATA SEGURIDAD EN DATOS Y FIRMA DIGITAL, S.A. Version 2.0

CERTIFICATION PRACTICE STATEMENT (CPS) SECURITY DATA SEGURIDAD EN DATOS Y FIRMA DIGITAL, S.A. Version 2.0 CERTIFICATION PRACTICE STATEMENT (CPS) OF SECURITY DATA SEGURIDAD EN DATOS Y FIRMA DIGITAL, S.A. Version.0 (CPS) INDEX 1. LEGAL FRAMEWORK... 10 1.1. Legal Base... 10 1.. Validation... 10 1.. Legal Support...

More information

DEPARTMENT OF DEFENSE PUBLIC KEY INFRASTRUCTURE EXTERNAL CERTIFICATION AUTHORITY MASTER TEST PLAN VERSION 1.0

DEPARTMENT OF DEFENSE PUBLIC KEY INFRASTRUCTURE EXTERNAL CERTIFICATION AUTHORITY MASTER TEST PLAN VERSION 1.0 DEFENSE INFORMATION SYSTEMS AGENCY JOINT INTEROPERABILITY TEST COMMAND FORT HUACHUCA, ARIZONA DEPARTMENT OF DEFENSE PUBLIC KEY INFRASTRUCTURE EXTERNAL CERTIFICATION AUTHORITY MASTER TEST PLAN VERSION 1.0

More information

TERENA Certificate Service

TERENA Certificate Service Version 1.8 draft 3, 15 October 2014 (Valid from 18 October 2014) Page 1/48 TERENA Certificate Service TERENA Server CA, TERENA escience Server CA & TERENA Codesigning CA Certificate Practice Statement

More information

Neutralus Certification Practices Statement

Neutralus Certification Practices Statement Neutralus Certification Practices Statement Version 2.8 April, 2013 INDEX INDEX...1 1.0 INTRODUCTION...3 1.1 Overview...3 1.2 Policy Identification...3 1.3 Community & Applicability...3 1.4 Contact Details...3

More information

Polish Grid Certification Authority Certificate Policy and Certification Practice Statement

Polish Grid Certification Authority Certificate Policy and Certification Practice Statement Polish Grid Certification Authority Certificate Policy and Certification Practice Statement version 0.4 (DRAFT ) September 2, 2002 1 1 Introduction 1.1 Overview This document is written according to the

More information

TERENA Certificate Service

TERENA Certificate Service Version 1.4, 19 May 2010 Page 1/39 TERENA Certificate Service TERENA Server CA, TERENA escience Server CA & TERENA Codesigning CA Certificate Practice Statement Version 1.4 19 May 2010 http://www.terena.org/activities/tcs/

More information

PKI NBP Certification Policy for ESCB Encryption Certificates. OID: 1.3.6.1.4.1.31995.1.2.3.1 version 1.2

PKI NBP Certification Policy for ESCB Encryption Certificates. OID: 1.3.6.1.4.1.31995.1.2.3.1 version 1.2 PKI NBP Certification Policy for ESCB Encryption Certificates OID: 1.3.6.1.4.1.31995.1.2.3.1 version 1.2 Security Department NBP Warsaw, 2015 Table of Contents 1. Introduction 1 1.1 Overview 1 1.2 Document

More information

TERENA Certificate Service

TERENA Certificate Service Version 1.7, 15 January 2013 (Valid from 1 February 2013) Page 1/42 TERENA Certificate Service TERENA Server CA, TERENA escience Server CA & TERENA Codesigning CA Certificate Practice Statement Version

More information

National Register of Associations. Number 171.443. CIF G-63287510.

National Register of Associations. Number 171.443. CIF G-63287510. Certificate Policy for Secure Server (SSL), Extended Validation (EV) SSL, Electronic Office and Extended Validation (EV) Electronic Office Certificates National Register of Associations. Number 171.443.

More information

ISSUANCE AND MANAGEMENT POLICY FOR. Spektar Org Universal Certificate

ISSUANCE AND MANAGEMENT POLICY FOR. Spektar Org Universal Certificate ISSUANCE AND MANAGEMENT POLICY FOR Revision 2.1 Spektar AD 11A Carnegie street 1000 Sofia, Bulgaria phone: + 359 2 9699 200 fax: + 359 2 9699 255 http://www.spektar.org 1/15 CONTENT 1. Description of the

More information

ETSI TS 102 280 V1.1.1 (2004-03)

ETSI TS 102 280 V1.1.1 (2004-03) TS 102 280 V1.1.1 (2004-03) Technical Specification X.509 V.3 Certificate Profile for Certificates Issued to Natural Persons 2 TS 102 280 V1.1.1 (2004-03) Reference DTS/ESI-000018 Keywords electronic signature,

More information

Certipost Trust Services. Certificate Policy. for Lightweight Certificates for EUROCONTROL. Version 1.2. Effective date 03 May 2012

Certipost Trust Services. Certificate Policy. for Lightweight Certificates for EUROCONTROL. Version 1.2. Effective date 03 May 2012 Certipost Trust Services Version 1.2 Effective date 03 May 2012 Certipost NV ALL RIGHTS RESERVED. 2 13 Definitions : Activation Data Certificate Certificate Holder Certificate Public Registry Certificate

More information

Ericsson Group Certificate Value Statement - 2013

Ericsson Group Certificate Value Statement - 2013 COMPANY INFO 1 (23) Ericsson Group Certificate Value Statement - 2013 COMPANY INFO 2 (23) Contents 1 Ericsson Certificate Value Statement... 3 2 Introduction... 3 2.1 Overview... 3 3 Contact information...

More information

apple WWDR Certification Practice Statement Version 1.8 June 11, 2012 Apple Inc.

apple WWDR Certification Practice Statement Version 1.8 June 11, 2012 Apple Inc. Apple Inc. Certification Authority Certification Practice Statement Worldwide Developer Relations Version 1.8 Effective Date: June 11, 2012 Table of Contents 1. Introduction... 4 1.1. Trademarks... 4 1.2.

More information

CA Certificate Policy. SCHEDULE 1 to the SERVICE PROVIDER AGREEMENT

CA Certificate Policy. SCHEDULE 1 to the SERVICE PROVIDER AGREEMENT CA Certificate Policy SCHEDULE 1 to the SERVICE PROVIDER AGREEMENT This page is intentionally left blank. 2 ODETTE CA Certificate Policy Version Number Issue Date Changed By 1.0 1 st April 2009 Original

More information

PKI NBP Certification Policy for ESCB Signature Certificates. OID: 1.3.6.1.4.1.31995.1.2.2.1 version 1.5

PKI NBP Certification Policy for ESCB Signature Certificates. OID: 1.3.6.1.4.1.31995.1.2.2.1 version 1.5 PKI NBP Certification Policy for ESCB Signature Certificates OID: 1.3.6.1.4.1.31995.1.2.2.1 version 1.5 Security Department NBP Warsaw, 2015 Table of Contents 1. Introduction 1 1.1 Overview 1 1.2 Document

More information

NIST Test Personal Identity Verification (PIV) Cards

NIST Test Personal Identity Verification (PIV) Cards NISTIR 7870 NIST Test Personal Identity Verification (PIV) Cards David A. Cooper http://dx.doi.org/10.6028/nist.ir.7870 NISTIR 7870 NIST Text Personal Identity Verification (PIV) Cards David A. Cooper

More information

DigiCert Certification Practice Statement

DigiCert Certification Practice Statement DigiCert Certification Practice Statement DigiCert, Inc. Version 2.22 June 01, 2005 333 South 520 West Orem, UT 84042 USA Tel: 1-801-805-1620 Fax: 1-801-705-0481 www.digicert.com 1 General...7 1.1 DigiCert,

More information

ECC Certificate Addendum to the Comodo EV Certification Practice Statement v.1.03

ECC Certificate Addendum to the Comodo EV Certification Practice Statement v.1.03 ECC Certificate Addendum to the Comodo EV Certification Practice Statement v.1.03 Comodo CA, Ltd. ECC Certificate Addendum to Comodo EV CPS v. 1.03 6 March 2008 3rd Floor, Office Village, Exchange Quay,

More information

Gandi CA Certification Practice Statement

Gandi CA Certification Practice Statement Gandi CA Certification Practice Statement Gandi SAS 15 Place de la Nation Paris 75011 France Version 1.0 TABLE OF CONTENTS 1.INTRODUCTION...10 1.1.Overview...10 1.2.Document Name and Identification...10

More information

ESnet SSL CA service Certificate Policy And Certification Practice Statement Version 1.0

ESnet SSL CA service Certificate Policy And Certification Practice Statement Version 1.0 ESnet SSL CA service Certificate Policy And Certification Practice Statement Version 1.0 June 30, 2004 Table of Contents Table of Contents...2 1 Introduction...3 1.1 Overview...3 1.1.1 General Definitions...4

More information

Digital Signature A Digital Signature is a data item that vouches the origin and the integrity of a Message The originator of a message uses a signing

Digital Signature A Digital Signature is a data item that vouches the origin and the integrity of a Message The originator of a message uses a signing Public Key Infrastructure (X509 PKI) Presented by : Ali Fanian Digital Signature A Digital Signature is a data item that vouches the origin and the integrity of a Message The originator of a message uses

More information

SwissSign Certificate Policy and Certification Practice Statement for Gold Certificates

SwissSign Certificate Policy and Certification Practice Statement for Gold Certificates SwissSign Certificate Policy and Certification Practice Statement for Gold Certificates Version March 2004 Version 2004-03 SwissSign Gold CP/CPS Page 1 of 66 Table of Contents 1. INTRODUCTION...9 1.1 Overview...

More information

Trustis FPS PKI Glossary of Terms

Trustis FPS PKI Glossary of Terms Trustis FPS PKI Glossary of Terms The following terminology shall have the definitions as given below: Activation Data Asymmetric Cryptosystem Authentication Certificate Certificate Authority (CA) Certificate

More information

Certification Practice Statement

Certification Practice Statement Certification Practice Statement Version 2.0 Effective Date: October 1, 2006 Continovation Services Inc. (CSI) Certification Practice Statement 2006 Continovation Services Inc. All rights reserved. Trademark

More information

TELSTRA RSS CA Subscriber Agreement (SA)

TELSTRA RSS CA Subscriber Agreement (SA) TELSTRA RSS CA Subscriber Agreement (SA) Last Revision Date: December 16, 2009 Version: Published By: Telstra Corporation Ltd Copyright 2009 by Telstra Corporation All rights reserved. No part of this

More information

ETSI TS 102 042 V1.1.1 (2002-04)

ETSI TS 102 042 V1.1.1 (2002-04) TS 102 042 V1.1.1 (2002-04) Technical Specification Policy requirements for certification authorities issuing public key certificates 2 TS 102 042 V1.1.1 (2002-04) Reference DTS/SEC-004006 Keywords e-commerce,

More information

TeliaSonera Server Certificate Policy and Certification Practice Statement

TeliaSonera Server Certificate Policy and Certification Practice Statement TeliaSonera Server Certificate Policy and Certification Practice Statement v.1.4 TeliaSonera Server Certificate Policy and Certification Practice Statement CA name Validation OID TeliaSonera Server CA

More information

fulfils all requirements defined in the technical specification The appendix to the certificate is part of the certificate and consists of 6 pages.

fulfils all requirements defined in the technical specification The appendix to the certificate is part of the certificate and consists of 6 pages. The certification body of TÜV Informationstechnik GmbH hereby awards this certificate to the company Fabrica Nacional de Moneda y Timbre. Real Casa de la Moneda C/Jorge Juan, 106 28009 Madrid, Spain to

More information

CERITIFICATE POLICY CONCERNING PERSONAL DIGITAL CERTIFICATES OF BANK OF FINLAND AND FINANCIAL SUPERVISORY AUTHORITY EMPLOYEES

CERITIFICATE POLICY CONCERNING PERSONAL DIGITAL CERTIFICATES OF BANK OF FINLAND AND FINANCIAL SUPERVISORY AUTHORITY EMPLOYEES Certificate Policy 1 (18) CERITIFICATE POLICY CONCERNING PERSONAL DIGITAL CERTIFICATES OF BANK OF FINLAND AND FINANCIAL SUPERVISORY AUTHORITY EMPLOYEES 1 INTRODUCTION... 4 1.1 Overview... 4 1.2 Document

More information

RECOMMENDATIONS for the PROCESSING of EXTENDED VALIDATION SSL CERTIFICATES January 2, 2014 Version 2.0

RECOMMENDATIONS for the PROCESSING of EXTENDED VALIDATION SSL CERTIFICATES January 2, 2014 Version 2.0 Forum RECOMMENDATIONS for the PROCESSING of EXTENDED VALIDATION SSL CERTIFICATES January 2, 2014 Version 2.0 Copyright 2007-2014, The CA / Browser Forum, all rights reserved. Verbatim copying and distribution

More information

A PKI for IP Address Space and AS Numbers. Dr. Stephen Kent Chief Scientist - Information Security

A PKI for IP Address Space and AS Numbers. Dr. Stephen Kent Chief Scientist - Information Security A PKI for IP Address Space and AS Numbers Dr. Stephen Kent Chief Scientist - Information Security Presentation Outline Why a PKI? PKI background Address & AS number allocation system The proposed PKI Structure

More information

Certification Practice Statement

Certification Practice Statement Certification Practice Statement Revision R1 2013-01-09 1 Copyright Printed: January 9, 2013 This work is the intellectual property of Salzburger Banken Software. Reproduction and distribution require

More information

HKUST CA. Certification Practice Statement

HKUST CA. Certification Practice Statement HKUST CA Certification Practice Statement IN SUPPORT OF HKUST CA CERTIFICATION SERVICES Version : 1.1 Date : 3 March 2000 Prepared by : Information Technology Services Center Hong Kong University of Science

More information

Certificate Policy and Certification Practice Statement CNRS/CNRS-Projets/Datagrid-fr

Certificate Policy and Certification Practice Statement CNRS/CNRS-Projets/Datagrid-fr Certificate Policy and Certification Practice Statement CNRS/CNRS-Projets/Datagrid-fr Version 0.3 August 2002 Online : http://www.urec.cnrs.fr/igc/doc/datagrid-fr.policy.pdf Old versions Version 0.2 :

More information

Globe Hosting Certification Authority Globe Hosting, Inc. 501 Silverside Road, Suite 105, Wilmington, DE 19809, County of New Castle, United States

Globe Hosting Certification Authority Globe Hosting, Inc. 501 Silverside Road, Suite 105, Wilmington, DE 19809, County of New Castle, United States Globe Hosting Certification Authority Globe Hosting, Inc. 501 Silverside Road, Suite 105, Wilmington, DE 19809, County of New Castle, United States www.globessl.com TABLE OF CONTENTS 1. INTRODUCTION...

More information

L@Wtrust Class 3 Registration Authority Charter

L@Wtrust Class 3 Registration Authority Charter Class 3 Registration Authority Charter Version 1.0 applicable from 09 November 2010 Building A, Cambridge Park, 5 Bauhinia Street, Highveld Park, South Africa, 0046 Phone +27 (0)12 676 9240 Fax +27 (0)12

More information

Dr. Cunsheng DING HKUST, Hong Kong. Security Protocols. Security Protocols. Cunsheng Ding, HKUST COMP685C

Dr. Cunsheng DING HKUST, Hong Kong. Security Protocols. Security Protocols. Cunsheng Ding, HKUST COMP685C Cunsheng Ding, HKUST Lecture 06: Public-Key Infrastructure Main Topics of this Lecture 1. Digital certificate 2. Certificate authority (CA) 3. Public key infrastructure (PKI) Page 1 Part I: Digital Certificates

More information

Certificate Policy. SWIFT Qualified Certificates SWIFT

Certificate Policy. SWIFT Qualified Certificates SWIFT SWIFT SWIFT Qualified Certificates Certificate Policy This Certificate Policy applies to Qualified Certificates issued by SWIFT. It indicates the requirements and procedures to be followed, and the responsibilities

More information

- X.509 PKI EMAIL SECURITY GATEWAY. Certificate Policy (CP) & Certification Practice Statement (CPS) Edition 1.1

- X.509 PKI EMAIL SECURITY GATEWAY. Certificate Policy (CP) & Certification Practice Statement (CPS) Edition 1.1 - X.509 PKI EMAIL SECURITY GATEWAY Certificate Policy (CP) & Certification Practice Statement (CPS) Edition 1.1 Commerzbank AG - Page 1 Document control: Title: Description : RFC Schema: Authors: Commerzbank

More information

- X.509 PKI COMMERZBANK PERSONS PKI. Certificate Policy (CP) & Certification Practice Statement (CPS) Edition 1.0

- X.509 PKI COMMERZBANK PERSONS PKI. Certificate Policy (CP) & Certification Practice Statement (CPS) Edition 1.0 - X.509 PKI COMMERZBANK PERSONS PKI Certificate Policy (CP) & Certification Practice Statement (CPS) Edition 1.0 Commerzbank AG Page 1 Document Control: Title: Description: RFC Schema: Authors: Commerzbank

More information

EBIZID CPS Certification Practice Statement

EBIZID CPS Certification Practice Statement EBIZID EBIZID CPS Certification Practice Statement Version 1.02 Contents 1 General 7 1.1 EBIZID 7 1.2 Digital Certificates 7 1.3 User Interaction for Selecting a Certification Service 7 1.4 EBIZID Registration

More information

Certificate Policy for OCES Employee Certificates (Public Certificates for Electronic Services) Version 5

Certificate Policy for OCES Employee Certificates (Public Certificates for Electronic Services) Version 5 Certificate Policy for OCES Employee Certificates (Public Certificates for Electronic Services) Version 5 - 2 - Contents Rights...4 Preface...5 Introduction...6 1 Overview and scope...7 2 References...8

More information

SSL.com Certification Practice Statement

SSL.com Certification Practice Statement SSL.com Certification Practice Statement SSL.com Version 1.0 February 15, 2012 2260 W Holcombe Blvd Ste 700 Houston, Texas, 77019 US Tel: +1 SSL-CERTIFICATE (+1-775-237-8434) Fax: +1 832-201-7706 www.ssl.com

More information

Certificate Path Validation

Certificate Path Validation Version 1.4 NATIONAL SECURITY AUTHORITY Version 1.4 Certificate Path Validation 19 th November 2006 No.: 1891/2006/IBEP-011 NSA Page 1/27 NATIONAL SECURITY AUTHORITY Department of Information Security

More information

ETSI TS 101 456 V1.4.3 (2007-05)

ETSI TS 101 456 V1.4.3 (2007-05) TS 101 456 V1.4.3 (2007-05) Technical Specification Electronic Signatures and Infrastructures (ESI); Policy requirements for certification authorities issuing qualified certificates 2 TS 101 456 V1.4.3

More information

3.Practices and procedures. v 1.1 05.12.2014

3.Practices and procedures. v 1.1 05.12.2014 v 1.1 05.12.2014 3.Practices and procedures DOMENY.PL Ltd / DOMENY.PL sp. z o.o. Marcika 27 30-443 Krakow, Poland tel.: (+48) 12 296 36 63 fax: (+48) 12 395 33 65 hotline / infolinia: (+48) 501 DOMENY

More information

EuropeanSSL Secure Certification Practice Statement

EuropeanSSL Secure Certification Practice Statement EuropeanSSL Secure Certification Practice Statement Eunetic GmbH Version 1.0 14 July 2008 Wagnerstrasse 25 76448 Durmersheim Tel: +49 (0) 180 / 386 384 2 Fax: +49 (0) 180 / 329 329 329 www.eunetic.eu TABLE

More information

Study on Mutual Recognition of esignatures: update of Country Profiles Icelandic country profile

Study on Mutual Recognition of esignatures: update of Country Profiles Icelandic country profile Study on Mutual Recognition of esignatures: update of Country Profiles Icelandic country profile This report / paper was prepared for the IDABC programme by: Coordinated by: Hans Graux (time.lex), Brigitte

More information

Resource Certificate Profile

Resource Certificate Profile Resource Certificate Profile Geoff Huston, George Michaelson, Rob Loomans APNIC IETF 67 Resource Certificate Profile Background: This certificate is intended to express a right-of-use relationship between

More information

HKUST CA. Certification Practice Statement

HKUST CA. Certification Practice Statement HKUST CA Certification Practice Statement IN SUPPORT OF HKUST CA CERTIFICATION SERVICES Version : 2.1 Date : 12 November 2003 Prepared by : Information Technology Services Center Hong Kong University of

More information

Certificate Policy for OCES Functional Certificates (Public Certificates for Electronic Services) Version 2

Certificate Policy for OCES Functional Certificates (Public Certificates for Electronic Services) Version 2 Certificate Policy for OCES Functional Certificates (Public Certificates for Electronic Services) Version 2 - 2 - Contents Rights...4 Preface...5 Introduction...6 1 Overview and scope...7 2 References...9

More information

Federal PKI (FPKI) Community Transition to SHA-256 Frequently Asked Questions (FAQ)

Federal PKI (FPKI) Community Transition to SHA-256 Frequently Asked Questions (FAQ) Federal PKI (FPKI) Community Transition to SHA-256 Frequently Asked Questions (FAQ) Version 1.0 January 18, 2011 Table of Contents 1. INTRODUCTION... 3 1.1 BACKGROUND... 3 1.2 OBJECTIVE AND AUDIENCE...

More information

associate professor BME Híradástechnikai Tanszék Lab of Cryptography and System Security (CrySyS) buttyan@hit.bme.hu, buttyan@crysys.

associate professor BME Híradástechnikai Tanszék Lab of Cryptography and System Security (CrySyS) buttyan@hit.bme.hu, buttyan@crysys. Foundations for secure e-commerce (bmevihim219) Dr. Levente Buttyán associate professor BME Híradástechnikai Tanszék Lab of Cryptography and System Security (CrySyS) buttyan@hit.bme.hu, buttyan@crysys.hu

More information

PEXA Public Key Infrastructure (PKI) Certification Authority Certificate Policy

PEXA Public Key Infrastructure (PKI) Certification Authority Certificate Policy PEXA Public Key Infrastructure (PKI) Certification Authority Certificate Policy Version: 1.0 Issued: August 2014 Status: Final PEXA Certification Authority Certificate Profile 1. Introduction Property

More information

Certificate Policy for OCES employee certificates (Public Certificates for Electronic Services)

Certificate Policy for OCES employee certificates (Public Certificates for Electronic Services) Certificate Policy for OCES employee certificates (Public Certificates for Electronic Services) - 2 - Contents Rights...4 Preface...5 Introduction...6 1 Overview and scope...7 2 References...8 3 Definitions

More information

X.509 Certificate Policy for the Australian Department of Defence Individual Software Certificates (Medium Assurance)

X.509 Certificate Policy for the Australian Department of Defence Individual Software Certificates (Medium Assurance) X.509 Certificate Policy for the Australian Department of Defence Individual Software Certificates (Medium Assurance) Version 4.0 May 2014 Notice to all parties seeking to rely Reliance on a Certificate

More information

Digital Certificates (Public Key Infrastructure) Reshma Afshar Indiana State University

Digital Certificates (Public Key Infrastructure) Reshma Afshar Indiana State University Digital Certificates (Public Key Infrastructure) Reshma Afshar Indiana State University October 2015 1 List of Figures Contents 1 Introduction 1 2 History 2 3 Public Key Infrastructure (PKI) 3 3.1 Certificate

More information

InCommon Certification Practices Statement. Server Certificates

InCommon Certification Practices Statement. Server Certificates InCommon Certification Practices Statement for Server Certificates 16 August 2010 Version 1.0 Latest version: https://www.incommon.org/cert/repository/cps_ssl.pdf This version: https://www.incommon.org/cert/repository/cps_ssl_20100816.pdf

More information

E-TUGRA INFORMATIC TECHNOLOGIES AND SERVICES CORP (E-TUGRA)

E-TUGRA INFORMATIC TECHNOLOGIES AND SERVICES CORP (E-TUGRA) E-TUGRA INFORMATIC TECHNOLOGIES AND SERVICES CORP (E-TUGRA) QUALIFIED CERTIFICATE POLICY AND PRACTICE STATEMENT (CP-CPS) VERSION 1.0 DATE OF ENTRY INTO FORCE : JUNE, 2008 OID 2.16.792.3.0.4.1.1.2 E-TUGRA

More information

THE WALT DISNEY COMPANY PUBLIC KEY INFRASTRUCTURE CERTIFICATE POLICY. July 2011 Version 2.0. Copyright 2006-2011, The Walt Disney Company

THE WALT DISNEY COMPANY PUBLIC KEY INFRASTRUCTURE CERTIFICATE POLICY. July 2011 Version 2.0. Copyright 2006-2011, The Walt Disney Company THE WALT DISNEY COMPANY PUBLIC KEY INFRASTRUCTURE CERTIFICATE POLICY July 2011 Version 2.0 Copyright 2006-2011, The Walt Disney Company Version Control Version Revision Date Revision Description Revised

More information

[SMO-SFO-ICO-PE-046-GU-

[SMO-SFO-ICO-PE-046-GU- Presentation This module contains all the SSL definitions. See also the SSL Security Guidance Introduction The package SSL is a static library which implements an API to use the dynamic SSL library. It

More information

Some Cryptographic Implementations

Some Cryptographic Implementations Some Cryptographic Implementations October 10 14, 2016 Guinee Conakry By Marcus K. G. Adomey Chief Operations Manager AfricaCERT Email: marcus.adomey@africacert.org OVERVIEW Fingerprint Digital Signature

More information

Public Key Certification Infrastructure

Public Key Certification Infrastructure Public Key Certification Infrastructure Petr Hanácek hanacek@dcse.fee.vutbr.cz Faculty of Electrical Engineering and Computer Science Brno University of Technology Abstract Jan Staudek staudek@fi.muni.cz

More information

Certificate Policy KEYNECTIS SSL CA CP. Emmanuel Montacutelli 12/11/2014 DMS_CP_KEYNECTIS SSL CA CP_1.2

Certificate Policy KEYNECTIS SSL CA CP. Emmanuel Montacutelli 12/11/2014 DMS_CP_KEYNECTIS SSL CA CP_1.2 Certificate Policy KEYNECTIS SSL CA CP Emmanuel Montacutelli 12/11/2014 DMS_CP_KEYNECTIS SSL CA CP_1.2 KEYNECTIS SSL CA CP Version 1.2 Pages 51 Status Draft Final Author Emmanuel Montacutelli OpenTrust

More information

AGENDA ITEM 15-16 : ELECTRONIC SIGNATURE

AGENDA ITEM 15-16 : ELECTRONIC SIGNATURE SCREENING CHAPTER 10 Country Session: 13- Content Legislation Main Points of Turkish Electronic Signature Legislation Electronic Certificate Service Providers and Market Standardization Aspect of Electronic

More information

Public Key Infrastructure (PKI)

Public Key Infrastructure (PKI) Public Key Infrastructure (PKI) Reading Chapter 15 1 Distributing Public Keys Public key cryptosystems allow parties to share secrets over unprotected channels Extremely useful in an open network: Parties

More information

Certificates. Noah Zani, Tim Strasser, Andrés Baumeler

Certificates. Noah Zani, Tim Strasser, Andrés Baumeler Certificates Noah Zani, Tim Strasser, Andrés Baumeler Overview Motivation Introduction Public Key Infrastructure (PKI) Economic Aspects Motivation Need for secure, trusted communication Growing certificate

More information

CERTIFICATE POLICY KEYNECTIS SSL CA

CERTIFICATE POLICY KEYNECTIS SSL CA CERTIFICATE POLICY KEYNECTIS SSL CA Date: 05/02/2009 KEYNECTIS SSL CA CERTIFICATE POLICY Subject: KEYNECTIS SSL CA Certificate Policy Version number: 1.1 Number of pages: 49 Status of the Project Final

More information

Lockheed Martin Enterprise Public Key Infrastructure Certificate Policy (CP)

Lockheed Martin Enterprise Public Key Infrastructure Certificate Policy (CP) Lockheed Martin Enterprise Public Key Infrastructure Certificate Policy (CP) Version 8.10 April 2016 Copyright, Lockheed Martin, 2016 Questions or comments regarding the Lockheed Martin epki Certification

More information

InCommon Certification Practices Statement. Client Certificates

InCommon Certification Practices Statement. Client Certificates InCommon Certification Practices Statement for Client Certificates 14 February 2011 Version 1.0 Latest version: 14 February 2011 This version: 14 February 2011 Table of Contents 1 INTRODUCTION... 4 1.1

More information

Network Security, spring Final Project Report X.509

Network Security, spring Final Project Report X.509 Network Security, spring 2008 Final Project Report X.509 This report is the final report for the Network Security course module of the LP 2 of the second semester in the Network Design course. The course

More information

e-tuğra CERTIFICATE POLICY E-Tuğra EBG Bilişim Teknolojileri ve Hizmetleri A.Ş. Version: 3.1 Validity Date: September, 2013 Update Date: 30/08/2013

e-tuğra CERTIFICATE POLICY E-Tuğra EBG Bilişim Teknolojileri ve Hizmetleri A.Ş. Version: 3.1 Validity Date: September, 2013 Update Date: 30/08/2013 e-tuğra CERTIFICATE POLICY E-Tuğra EBG Bilişim Teknolojileri ve Hizmetleri A.Ş. Version: 3.1 Validity Date: September, 2013 Update Date: 30/08/2013 Ceyhun Atıf Kansu Cad. 130/58 Balgat / ANKARA TURKEY

More information

Operating a CSP in Switzerland or Playing in the champions league of IT Security

Operating a CSP in Switzerland or Playing in the champions league of IT Security Operating a CSP in Switzerland or Playing in the champions league of IT Security Agenda SwissSign Technology Products and Processes Legal Aspects and Standards Business Model Future Developments 2 SwissSign

More information

Part III-a. Universität Klagenfurt - IWAS Multimedia Kommunikation (VK) M. Euchner; Mai 2001. Siemens AG 2001, ICN M NT

Part III-a. Universität Klagenfurt - IWAS Multimedia Kommunikation (VK) M. Euchner; Mai 2001. Siemens AG 2001, ICN M NT Part III-a Contents Part III-a Public-Key Infrastructure (PKI) Definition of a PKI and PKI components PKI Trust Models Digital Certificate, X.509 Certificate Management and Life Cycle Public Key Infrastructure

More information

Eskom Registration Authority Charter

Eskom Registration Authority Charter REGISTRATION WWW..CO.ZA Eskom Registration Authority Charter Version 2.0 applicable from 20 November 2009 Megawatt Park Maxwell Drive Sunninghill, SOUTH AFRICA, 2157 Phone +27 (0)11 800 8111 Fax +27 (0)11

More information

Gatekeeper PKI Framework. Archived. February X.509 Certificate and Certificate Revocation List Profiles

Gatekeeper PKI Framework. Archived. February X.509 Certificate and Certificate Revocation List Profiles Gatekeeper PKI Framework X.509 Certificate and Certificate Revocation List Profiles Department of Finance and Deregulation Australian Government Information Management Office Commonwealth of Australia

More information

X.509 Certificate Generator User Manual

X.509 Certificate Generator User Manual X.509 Certificate Generator User Manual Introduction X.509 Certificate Generator is a tool that allows you to generate digital certificates in PFX format, on Microsoft Certificate Store or directly on

More information

InCommon Certification Practices Statement. the InCommon IGTF Server Certification Authority

InCommon Certification Practices Statement. the InCommon IGTF Server Certification Authority InCommon Certification Practices Statement for the InCommon IGTF Server Certification Authority November 2013 Version 1.1 Latest version: https://www.incommon.org/cert/repository/cps_igtf_ssl.pdf This

More information

ETSI TR 103 123 V1.1.1 (2012-11)

ETSI TR 103 123 V1.1.1 (2012-11) TR 103 123 V1.1.1 (2012-11) Technical Report Electronic Signatures and Infrastructures (ESI); Guidance for Auditors and CSPs on TS 102 042 for Issuing Publicly-Trusted TLS/SSL Certificates 2 TR 103 123

More information

NCDC GOVERNMENT-CA PKI DISCLOSURE STATEMENT

NCDC GOVERNMENT-CA PKI DISCLOSURE STATEMENT NCDC GOVERNMENT-CA PKI DISCLOSURE STATEMENT Document Classification: Public Version Number: 1.5 Issue Date: June 11, 2015 Copyright 2015 National Center for Digital Certification, Kingdom of Saudi Arabia.

More information

ING Public Key Infrastructure Certificate Practice Statement. Version 5.3 - June 2015

ING Public Key Infrastructure Certificate Practice Statement. Version 5.3 - June 2015 ING Public Key Infrastructure Certificate Practice Statement Version 5.3 - June 2015 Colophon Commissioned by Additional copies ING Corporate PKI Policy Approval Authority Additional copies of this document

More information

Land Registry. Version 4.0 10/09/2009. Certificate Policy

Land Registry. Version 4.0 10/09/2009. Certificate Policy Land Registry Version 4.0 10/09/2009 Certificate Policy Contents 1 Background 5 2 Scope 6 3 References 6 4 Definitions 7 5 General approach policy and contract responsibilities 9 5.1 Background 9 5.2

More information

PUBLIC KEY INFRASTRUCTURE

PUBLIC KEY INFRASTRUCTURE PUBLIC KEY INFRASTRUCTURE http://www.tutorialspoint.com/cryptography/public_key_infrastructure.htm Copyright tutorialspoint.com The most distinct feature of Public Key Infrastructure PKC is that it uses

More information

Certificate Policy for OCES personal certificates (Public Certificates for Electronic Services)

Certificate Policy for OCES personal certificates (Public Certificates for Electronic Services) Certificate Policy for OCES personal certificates (Public Certificates for Electronic Services) - 2 - Contents Rights...4 Preface...5 Introduction...6 1 Overview and scope...7 2 References...8 3 Definitions

More information

Introduction to Network Security Key Management and Distribution

Introduction to Network Security Key Management and Distribution Introduction to Network Security Key Management and Distribution Egemen K. Çetinkaya Department of Electrical & Computer Engineering Missouri University of Science and Technology cetinkayae@mst.edu http://web.mst.edu/~cetinkayae/teaching/cpe5420fall2015

More information